ANSWER IN YOUR OWN WORDS

1. Explain the differences between the Legislative, Executive, and Judicial roles of the federal government.
2. Describe the three types of jurisdiction.
3. What are the differences between federal and state powers? Which supercedes?
4. Distinguish between procedural and substantive law.
5. Describe how security, privacy, and compliance fit together?
6. Define a preponderance of evidence.
7. Explain the difference between civil and criminal law, including penalties/punishment.
8. How does precedent play into the decision on a case?
9. Explain the difference between compliance and audit.

Read the attached case legaland answer the following:

In December 2013, Target Corporation (Target), the second-largest retailer in the United States, announced that it was the newest victim of a point-of-sale (PoS) data security cyberattack. The security breach occurred between November 27 and December 15, 2013, at the peak of the Christmas holiday shopping season. Its believed that private information (names, addresses, e-mail addresses, and so forth) of an estimated 70 million shoppers was compromised as a result of the breach. In addition, the attackers were able to secure debit and credit card information of 40 million customers. The credit and debit card breach included loss of PIN numbers and CVV codes.

The Target breach is the second largest such data security breach in history. The record is held by the 2009 Heartland Payment Systems breach, which exposed 130 million credit and debit card holders.

Target was certified as Payment Card Industry Data Security Standard (PCI DSS) compliant in September 2013 by Trustwave. Trustwave is the same company that certified Heartland Payment Systems as PCI compliant before Heartlands 2009 data breach. PCI is a set of data security industry standards businesses are required to follow if they accept bank card payments. The PCI standards include requirements such as encrypting data, limiting access to cardholder data, maintaining up-to-date antivirus software, and installing and maintaining firewalls.

A class action lawsuit was filed by Trustmark National Bank and Green Bank NA in 2014 against Target and Trustwave. Among other items, the lawsuit alleges that Target failed to follow PCI DSS standards.

10. How is the case scenario related to privacy?
11. Why is the company liable if the concept of privacy is not mentioned in the Constitution?

4^th Amendment

12. Performing an Internet search, review the 4^th Amendment of the US Constitution, understand the established exceptions, and then submit a brief summary on the identified exceptions and the logical rational for the exceptions.